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~ The MAILING DATE of this communication appears on the cover sheet with the correspondence address — 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH{S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

• If NO period for reply is specified above, the maximum statutory period v^ll apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

• Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 14 March 2005 . 
2a)n This action is FINAL. 2b)^ This action is non-final. 

3) n Since this application is in condition for allowance except for fonnal nnatters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 21 3. 

Disposition of Claims 

4) 13 Clainn(s) 1,3.4,6-13,15,16,18-24 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Claim(s) is/are allowed. 

6M Claim(s) 1.3.4.6-13,15.16,18-24 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10)n The drawing(s) filed on is/are: a)n accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the con'ection is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
11 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or fomri PTO-1 52. 

Priority under 35 U.S.C. § 119 

12)0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 
Allowable Subject Matter 

1. The indicated allowability of claims 5 and 17 is withdrawn in view of reference Asay 
US 5,903,882. Asay teaches that a short term certificate becomes invalid by age and thus 
need not be subject to a CRL, (Col 3 lines 1-4). 

The previous office action has been repeated below for convenience, with the addition of 
the rejection of previous claims 5 and 17. 

Claim Rejections - 35 USC § 103 

2. Claims 1-3, 6, 8, 10, 13, 14, 15, 18, 20 and 22 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Chapman US 6,058,484 in view of Riggins US 6,233,341. 

As per claims 1, and 13, Chapman discloses a certificate authority issuing a long-term 
public key identity certificate (certificate) that binds a public key of the user to long term 
identification information (identifying information) related to the user, (Col 7 lines 57- 
67). 

Chapman does not disclose a short-term public key certificate. 

Riggins discloses a certificate authority (global server) for issuing a short term public key 
credential certificate (certificates that are short lived), (Col 3 lines 33-43). The certificate 
binds the public key of the user to long term identification information (long term 
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certificate) and to short term authorization information (validity information, name, serial 
number), (Col 15 Unes 13-35). The user presents this short term certificate to an 
application (web server) for authorization, (Col 14 lines 25-35), The cHent demonstrates 
knowledge of a private key corresponding to the public key in the certificate, (Col 2 lines 
35-48). 

It would be obvious to modify Chapman's PKI system with a short term certificate of 
Riggins to keep a Certificate Revocation list small in order to reduce network traffic. 

As per claims 2, and 14, Chapman does not disclose a short term certificate. 

Riggins discloses that the certificate has a time stamp (expiration date), (Col 3 lines 33- 

38). 

It would be obvious to modify Chapman's pki system with a timestamp of Riggins to 
state time of validity and increase security. 

As per claim 3, and 15 Chapman does not disclose a short term certificate. 

Riggins discloses that the expiration date is sufficiently short (limited amount of time), 

(Col 3 lines 33-38). 

As per claims 6, and 18, Chapman does not disclose a short term certificate. 

Riggins discloses a short term certificate in a non structured form, (Fig 13). 

As per claims 8, and 20, Chapman discloses using a X.509 certificate, (Col 8 lines 33- 

43). Chapman does not disclose a shot term certificate. 

Riggins discloses a short term certificate, (Col 3 Unes 33-43). 
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It would be obvious to one skilled in the art to modify Chapman's x.509 with Riggins's 
short term certificate, because the 509 format is supported by a number of different 
protocols, (Chapman Col 8 line 43), and the short term certificate need not be checked by 
CRLs. 

As per claims 10, and 22, Chapman discloses memory, (Col 9 line 2), The long term 
certificate must be stored in the directory to be retrieved. 

Claims 4, 5, 16 and 17 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Asay US 
5,903,882. 

3. As per claims 4, 5, 16 and 17, Chapman-Riggins discloses a short term certificates 
with limited validity. 

Asay discloses that a certificate that becomes invalid by age need not be on the schedule 
of the CRL, because the age has already rendered the short term certificate invalid, (Col 3 
lines 1-4). 

It would be obvious to modify Chapman's PKI system with Asay's CRL to enable 
reduced network traffic. 

Claims 7, 9, 19, and 21 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Howell US 
5,276,901, 

4. As per claims 7, and 19, Chapman-Riggins discloses a short temci certificate. 
Chapman-Riggins does not disclose a structured certificate. 



Application/Control Number: 09/483, 185 Page 5 

Art Unit: 2134 

Howell discloses a certificate with access restricted folders contained therein (Col 5 lines 
23-30). 

It would be obvious to one skilled in the art to modify Chapman-Riggins with Howell's 
restricted access to increase security. 

As per claims 9, and 21, Chapman-Riggins discloses using a short term X.509 certificate, 

(Chapman Col 8 lines 33-43). 

Howell discloses restricted folders, (Col 5 line 23). 

It would be obvious to one skilled in the art to modify Chapmans x.509 with Howell's 
restricted folders, because the 509 format is supported by a number of different protocols, 
(Col 8 line 43), and the restricted folders add a measure of security. 

Claims 11, and 23 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Maruyama US 
6,393,563. 

5. As per claims 1 1, and 23 Chapman-Riggins does not disclose a smart card. 
Maruyama disclose a private key may be stored on a smartcard, (Col 1 line 20, 53-56). 
It would be obvious to modify the Chapman-Riggins combination with Maruyama' s 
smart card, because the smart card increases the security of key storage. 

Claims 12, and 24 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Chapman US 6,058,484 in view of Riggins US 6,233,341 in view of Kausik US 
6,263,446. 

6. As per claims 12, and 24, Chapman-Riggins does not disclose a software wallet. 
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Kausik discloses storing a private key in a software wallet, (Col 4 linesl-6). 

It would be obvious to modify the Chapman-Riggins combination with Kausik' s software 

wallet because the wallet increases the security of key storage. 



3. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christopher J. Brown whose telephone number is 
(571)272-3833. The examiner can normally be reached on 8:30-6:00. 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory Morse can be reached on (571)272-3838. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 
Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). 

Christopher J. Brown 5/16/05 



Conclusion 





SUPERVISORY t . 



